Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\Iprip\Parameters] 'ServiceDll' = '<SYSTEM32>\Ipripve.dll'
- [<HKLM>\SYSTEM\ControlSet001\Services\Iprip] 'ImagePath' = '<SYSTEM32>\svchost.exe -k netsvcs'
- [<HKLM>\SYSTEM\ControlSet001\Services\Iprip] 'Start' = '00000002'
- '%TEMP%\RarSFX0\RasTls.exe'
- <SYSTEM32>\Sycmentec.config
- %WINDIR%\system\CERTAPL.DLL
- <SYSTEM32>\Ipripve.dll
- %TEMP%\RarSFX0\config.dat
- %TEMP%\RarSFX0\rastls.dll
- %TEMP%\RarSFX0\RasTls.exe
- %TEMP%\RarSFX0\Sycmentec.config
- %TEMP%\RarSFX0\RasTls.exe
- %TEMP%\RarSFX0\Sycmentec.config
- %TEMP%\RarSFX0\config.dat
- %TEMP%\RarSFX0\rastls.dll
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''